$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0a-wqKgQYkmrH9mFE8B0QmeIXuM.roa File: 0a-wqKgQYkmrH9mFE8B0QmeIXuM.roa (raw, json) Hash identifier: eU8lRLOWq+NlC0MhQe0tC3bWUBEsSdPZ+0WJthexKnk= Subject key identifier: D1:AF:B0:A8:A8:10:62:49:AB:1F:D9:85:13:C0:74:42:67:88:5E:E3 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 26C0 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0a-wqKgQYkmrH9mFE8B0QmeIXuM.roa Signing time: Fri 22 Aug 2025 08:43:12 +0000 ROA not before: Fri 22 Aug 2025 08:43:12 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 24165 IP address blocks: 49.159.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 9920 (0x26c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 22 08:43:12 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D1AFB0A8A8106249AB1FD98513C0744267885EE3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:a5:2b:4f:d1:b0:08:35:46:78:bd:5c:56:ea: 6c:44:05:28:2d:9f:82:b6:60:2a:63:c2:f1:72:e2: 46:40:48:bc:46:22:b6:9b:9f:e1:22:bf:02:0f:60: 3a:78:0a:bf:fa:26:7a:e6:84:a6:ec:11:b0:d0:3e: 05:dd:b1:1d:cd:d5:f8:0b:f8:06:0e:03:c8:45:7f: a2:5e:5d:0a:10:e5:e6:a8:a3:0e:ae:95:08:da:06: d0:60:31:be:66:95:39:64:66:8e:b0:6c:3b:eb:7e: ae:c8:ae:d3:0b:40:68:63:3a:6e:82:ca:a0:8a:37: 7d:d2:52:b9:68:cd:26:cf:8d:89:c6:43:b8:0b:b2: 68:e4:f8:35:f5:cd:10:d9:7f:88:4e:2c:72:3b:09: 95:53:be:cd:52:ee:30:7a:93:e9:ce:f5:99:6f:78: 0b:dc:b5:f7:ac:03:7f:a1:2f:11:f2:0c:1c:f6:bc: 25:9b:97:89:85:73:16:0b:1a:66:cb:c9:ba:0a:e5: c4:e3:df:46:51:8e:f0:c6:9c:b2:77:17:1b:06:8a: b5:5f:38:a9:a3:d3:3a:65:6e:7e:ec:b9:41:d5:65: 7d:e0:97:84:48:f1:e9:fd:56:2e:c2:d5:39:6b:9c: 3e:20:0b:2e:ab:aa:cd:d6:be:ba:c3:fc:71:c3:2d: de:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:AF:B0:A8:A8:10:62:49:AB:1F:D9:85:13:C0:74:42:67:88:5E:E3 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0a-wqKgQYkmrH9mFE8B0QmeIXuM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.220.0/22 Signature Algorithm: sha256WithRSAEncryption 75:b2:5a:bb:cb:97:41:fd:d1:ea:70:f8:49:32:c7:2a:c5:35: 00:59:66:db:8d:c6:51:89:69:c1:c7:f2:66:e1:41:ff:9a:91: e7:2d:80:0d:16:0e:7f:d4:7c:52:0c:31:73:bf:30:87:6d:64: ce:70:e8:32:d5:12:cd:c4:92:b0:24:1c:70:91:b7:0d:e6:bc: 1d:07:ed:d9:bb:b4:43:ec:68:85:cd:2f:5f:a5:e0:a3:8b:81: 77:ff:65:7d:4c:f6:90:7d:59:a2:48:50:4c:65:e6:1a:a8:90: 28:81:dd:8f:fe:3c:32:cb:3f:1d:ce:b4:bd:f7:cf:4e:bb:9d: 2f:4a:31:2f:07:b5:91:e5:91:83:b3:ea:13:5a:6b:e3:a1:e4: 19:a4:9b:cc:fd:a9:e6:85:bc:e6:23:f7:ee:2d:55:19:43:55: d7:e2:d0:14:8a:c0:6f:7b:f9:2c:56:4e:dc:8e:b5:36:3a:83: 76:8d:d9:09:6b:1e:2e:41:d5:92:01:ed:1c:ee:5f:ad:e0:fc: 5d:e9:a9:5e:60:34:85:b6:59:45:19:08:46:a2:4e:38:e9:6c: ba:f3:66:38:65:77:63:ac:59:50:ff:dd:c2:9d:08:3f:32:46: 80:21:65:f4:c9:e2:d5:7e:71:6b:99:4a:dc:fa:b1:09:8d:51: 64:fd:1f:92 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICJsAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNTA4MjIw ODQzMTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQxQUZCMEE4QTgxMDYy NDlBQjFGRDk4NTEzQzA3NDQyNjc4ODVFRTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDupStP0bAINUZ4vVxW6mxEBSgtn4K2YCpjwvFy4kZASLxGIrab n+EivwIPYDp4Cr/6JnrmhKbsEbDQPgXdsR3N1fgL+AYOA8hFf6JeXQoQ5eaoow6u lQjaBtBgMb5mlTlkZo6wbDvrfq7IrtMLQGhjOm6CyqCKN33SUrlozSbPjYnGQ7gL smjk+DX1zRDZf4hOLHI7CZVTvs1S7jB6k+nO9ZlveAvctfesA3+hLxHyDBz2vCWb l4mFcxYLGmbLyboK5cTj30ZRjvDGnLJ3FxsGirVfOKmj0zplbn7suUHVZX3gl4RI 8en9Vi7C1TlrnD4gCy6rqs3WvrrD/HHDLd5RAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU0a+wqKgQYkmrH9mFE8B0QmeIXuMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzBhLXdxS2dRWWttckg5bUZF OEIwUW1lSVh1TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx n9wwDQYJKoZIhvcNAQELBQADggEBAHWyWrvLl0H90epw+EkyxyrFNQBZZtuNxlGJ acHH8mbhQf+akectgA0WDn/UfFIMMXO/MIdtZM5w6DLVEs3EkrAkHHCRtw3mvB0H 7dm7tEPsaIXNL1+l4KOLgXf/ZX1M9pB9WaJIUExl5hqokCiB3Y/+PDLLPx3OtL33 z067nS9KMS8HtZHlkYOz6hNaa+Oh5Bmkm8z9qeaFvOYj9+4tVRlDVdfi0BSKwG97 +SxWTtyOtTY6g3aN2QlrHi5B1ZIB7RzuX63g/F3pqV5gNIW2WUUZCEaiTjjpbLrz Zjhld2OsWVD/3cKdCD8yRoAhZfTJ4tV+cWuZStz6sQmNUWT9H5I= -----END CERTIFICATE-----Generated at Sun Aug 24 11:38:30 2025 by rpki-client